Hello everyone,
I'm wondering if there are any test data or performance impact explanations regarding ZITI's impact on audio and video communication, real-time online meetings, and other instant messaging communications? In the deployment of IM-type network scenarios, we have been advised by several security service providers against converging the networks for audio and video communication, real-time online meetings, and other instant messaging into a zero-trust network. The reason given is that these types of services are quite sensitive to network fluctuations. According to their project implementations with many clients, zero-trust networks can have a certain impact on such networks, leading to a subpar user experience for instant communication. Therefore, I have the same doubts about ZITI.
Looking forward to your replies, thank you very much.
Hey KerwinKoo, we have set up an IP-Telephone Network (Windows Client and IP-Phones) over OpenZiti which now runs 6 months without problems (even when phoning with people in the next room).
The Key is the right architecture, which is different for any customer, and a few implementations outside OpenZiti to get the things working well for latency sensitive apps.
Happy to talk more about it for your use-case.
BR,
Frederik
3 Likes
Great insights @Frederik. We wrote a blog a while back on making VoIP work on Ziti and thus allowing the PBX to be 'dark' - Tunneling VoIP over OpenZiti.
I would also note, we have UDP native tunneling on the roadmap too, so soon you can do UDP over UDP, rather than UDP over TCP.
@Frederik @PhilipGriffiths Thank you for your response.
Hi @KerwinKoo,
while I can't say anything specific about your VOIP use case, I can say something about general delays we've experienced using OpenZiti.
We've done several tests, including test within one datacenter, across one datacenter and across several datacenters.
In regards to latency we've come to the following conclusion.
Delays caused by OpenZiti's overlay compared with a raw TCP connection are always in the range of 1 to 3ms. We found the real world effect to be none. We even had elastic clusters connected via OpenZiti where latency above 5ms was quite a concern - no issue via OpenZiti.
4 Likes
@dmuensterer Thank you for your reply.
From previous posts, I've noticed that there might be fluctuations when Ziti creates new connections. In your tests, is there a need for any code modifications in OpenZiti's communication aspects or some key configurations?